Introduction
Byteswop (“Byteswop”, “we”, “us”, or “our”) is committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, and what rights you have in relation to it.
This policy applies to all users of the MyFin platform, website, and related services. By using MyFin, you agree to the collection and use of information as described in this policy.
Data we collect
We collect information in the following categories:
Account and identity data
- User name and email address
- Password (stored as a one-way hash — we never store plaintext passwords)
- Billing address
Financial data
- Transaction records processed via our third-party payment provider
- Proof of payments you provide if paying via EFT method
- Payment method details processed via our third-party payment provider — we do not store card numbers
Usage and technical data
- IP address, browser type, and device information
- Pages visited, features used, and session duration
- Error logs and crash reports
- Cookies and similar tracking technologies (see the Cookies section below)
Communications data
- Messages sent to our support team
- Feedback, survey responses, and feature requests
- Email correspondence
How we use your data
We use the information we collect to:
- Provide, operate, and maintain the MyFin platform
- Process transactions and send related information including purchase confirmations and invoices
- Manage your account and provide customer support
- Send service-related notices such as security alerts and maintenance notifications
- Send marketing communications where you have opted in (you may opt out at any time)
- Improve and develop new features based on usage patterns
- Detect, prevent, and address fraud, security incidents, and technical issues
- Comply with legal obligations
Legal basis for processing
We process your personal data on the following legal grounds:
- Contract performance — processing necessary to provide the services you have signed up for
- Legitimate interests — improving our product, preventing fraud and ensuring security
- Legal obligation — where we are required to process data to comply with applicable law
- Consent — where you have explicitly opted in, such as for marketing emails
Data retention
We retain your personal data for as long as your account is active or as needed to provide our services. After account closure:
- Your financial records are retained for a minimum of 5 years to comply with accounting and tax legislation
- Support communications are retained for 2 years
- Technical logs are retained for 90 days
You may request deletion of your data at any time, subject to our legal retention obligations.
Your rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access — request a copy of the personal data we hold about you
- Correction — request that inaccurate or incomplete data be corrected
- Deletion — request that your data be deleted, subject to legal retention requirements
- Objection — object to processing based on legitimate interests
- Restriction — request that we limit how we process your data in certain circumstances
- Withdrawal of consent — where processing is based on consent, you may withdraw it at any time
To exercise any of these rights, contact us.
Security
We implement industry-standard security measures to protect your data, including:
- TLS 1.3 encryption for all data in transit
- AES-256 encryption for data at rest
- Two-factor authentication available on all accounts
- Regular penetration testing and security audits
- Infrastructure hosted in ISO 27001-certified data centres
- Strict role-based access controls for staff
While we take every reasonable precaution, no system is completely immune to risk. In the event of a data breach that affects your rights and freedoms, we will notify you and the relevant authorities in accordance with applicable law.
Children
MyFin is not directed at children under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected information from a child, please contact us and we will delete it promptly.
Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date at the top of this page and, where the changes are significant, notify you by email or via an in-app notice. Your continued use of MyFin after changes are posted constitutes your acceptance of the updated policy.
Contact us
If you have any questions about this Privacy Policy or how we handle your data, please contact us:
Email: enquiry@myfin-hub.com